CWE:
 

Sorry. No results for Bugtraq WLB2


CVEMAP Search Results

CVE
Details
Description
2019-07-30
Low
CVE-2019-10153

Vendor: Clusterlabs
Software: Fence-agents
 

 
A flaw was discovered in fence-agents, prior to version 4.3.4, where using non-ASCII characters in a guest VM's comment or other fields would cause fence_rhevm to exit with an exception. In cluster environments, this could lead to preventing automated recovery or otherwise denying service to clusters of which that VM is a member.

 
2018-08-03
Medium
CVE-2018-3777

Vendor: Restforce
Software: Restforce
 

 
Insufficient URI encoding in restforce before 3.0.0 allows attacker to inject arbitrary parameters into Salesforce API requests.

 
2018-05-09
Low
CVE-2018-2415

Vendor: SAP
Software: J2ee engine ...
 

 
SAP NetWeaver Application Server Java Web Container and HTTP Service (Engine API, from 7.10 to 7.11, 7.30, 7.31, 7.40, 7.50; J2EE Engine Server Core 7.11, 7.30, 7.31, 7.40, 7.50) do not sufficiently encode user controlled inputs, resulting in a content spoofing vulnerability when error pages are displayed.

 
2018-02-21
Low
CVE-2018-7289

Vendor: Teclib-edition
Software: Armadito ant...
 

 
An issue was discovered in armadito-windows-driver/src/communication.c in Armadito 0.12.7.2. Malware with filenames containing pure UTF-16 characters can bypass detection. The user-mode service will fail to open the file for scanning after the conversion is done from Unicode to ANSI. This happens because characters that cannot be converted from Unicode are replaced with '?' characters.

 
2018-02-15
Low
CVE-2018-7173

Vendor: Xpdfreader
Software: XPDF
 

 
A large loop in JBIG2Stream::readSymbolDictSeg in xpdf 4.00 allows an attacker to cause denial of service via a specific file due to inappropriate decoding.

 

 


Copyright 2019, cxsecurity.com

 

Back to Top